Cisco Routers :: File Sharing Over IPsec With RV220W
Apr 20, 2012
originally had two Netgear FVS318s set up with a VPN tunnel and everything worked as expected. I could connect to the server at the office from a machine at home and browse the files and more importantly do nightly backups of files that had changed at the office over the VPN to the house. The problem with the FVS318s was that for wireless I had to have another device and that the WAN to LAN throughput was something like 7Mbps. Kind of limiting when you consistently get 22Mbps from the ISP.So, I bought two Cisco RV220Ws to replace them with. I started by replacing the one at home and was able to get it going with the FVS318 at the office. The VPN was stable and I had no problem browsing the files on the server as I had already been doing. A couple weeks later I replaced the FVS318 at the office with the other RV220W and the VPN came up fine but I lost all ability to file share between the two sites. I've watched the phase 1 and 2 negotiations and they look good from both ends. =
I am trying to establish a connection with an already existing IPsec VPN for file sharing. I click on the icon and get error messages when I type the correct username and password. I also entered the shared secret key correctly. I do not know where to enter the "group" name that coincides with the key I was given.
Before I moved home I had one netgear router supplied by virgin media. On my home network I had my pc sharing it's printer and also some shared folders I.e. Music folder, my documents etc. Now I've moved I have had a new netgear box supplied by virgin media (which I call virgin media 7) which because of the shape of the building doesn't reach my bed room. To fix this I have had to connect my old netgear box (which I call virgin media 8) to the new one via 10m of CAT5e but now I can't access my shared printer or shared folders on my win xp pc which is connected to virgin media 7 via wireless if my vista laptop is connected to virgin media 8. I have tried looking in the setting for the option that makes it just act as an wireless extention to vm7 but they have removed the menu from the settings.
anything I put into my hosts file, will not go through the Cisco RV220W router. This is part of the set up:
192.168.1.10 << RV220W 192.168.1. 15 << A client machine 192.168.1.99 << Internal DNS with forwarder to OpenDNS (208.67.222.222 & 208.67.220.220) + a laptop that's not on the internal network at all.
Now, the client machine and the laptop both have an entry in their hosts files: 174.156.12.81 insight.hello.com
From the laptop, I can both browse to insight.hello.com, and I can ping it in Xterm.
From the client machine (192.168.1.15) which is behind the Cisco Router/FW, I can ping insight.hello.com, but I can not browse to it. This is especially strange since the ping goes through the Router every bit as much as the http traffic does, so why is the router giving me a DNS error on that, but the ping goes through just fine?
The hosts file is supposed to supercede any other information from anywhere, so it out to not be a problem for the router either. Yet, it obviously is.
I have tried to disable the internal DNS server as well as OpenDNS and just run the ISP's DNS servers, but no change - I still get that blue DNS error screen from the CIsco router.
Above IP's & hosts are fictitious.
The hosts file doesn't get blocked in a sense, but what happens is that if you have "Content Filtering" checked - even without any rules - the router can not verify that 174.156.12.81 is in fact insight.hello.com in this case, since it doesn't exist in the public DNS system.
So, I unchecked Content Filtering and now it works as it should.
When someone downloads a file, or similar, there seems to be no, or very little, room for other requests. I've even tried to be the only one on the network, start a download (from ex. Intel) and then tries to access a simple website, almost only text, and its extreemly slow. I hav ethe latest firmware, a windows domain network and the routers is not acting as dhcp server.
We have 2 VLANs configured to keep 2 groups of PCs apart. Is it possible to allow both VLANs to access the same printer without allowing other traffic between these VLANs?
I'm working on setting up my Blackberry Playbook to access the network over our IPsec VPN however so far I have had no luck. I'm also posting this on the Blackberry playbook support forum.
Settings on BlackBerry Playbook
Server Address: My IP Address Authentication type: XAuth-PSK Group Username: remote.com
We bought a RV220W in order to get a VPN in our Small Business. The RV220W will only be used to let clients connect to it and not a tunnel between another VPN box.We could use QuickVPN, but it won't be working in our case, because in order to use QuickVPN, the router wants to change its IP 10.x.y.1. Because we have multiple servers/services that are using a static IP, it would be quite painful to change the subnet. Therefore, we would like to stay on the same subnet and change it in worst case scenario only. This is why QuickVPN is not an option here.We could use SSL VPN, but most of our clients who will connect to the VPN are using Windows 7 x64. I have tried the Windows 7 x64 fix told in the latest firmware release notes, but I can't get it to work on my computer, which is a Win7 x64. It might still be broken. Many of them are not very tech-savyy, so I can't tell them to use a virtual machine to connect.We want a secure connection, therefore IPSec is better than PPTP. I've been trying to setup IPSec for the past hours but I can't get it working. At first, I wanted to use an SSL certificate, but having no luck with this, I switched to a Pre-shared Key (PSK) in order to get things simpler. Eventually I would like to use an SSL certificate, however I would like to get PSK working first to confirm that the IPSec connection is working.
I have attached with this post, screenshots of the IKE and VPN Policies. I have used the VPN Wizard in order to complete these fields. The local identifier is the WAN DynDNS FQDN. However, as for the remote FQDN, there should be none really, because clients are connecting to it, so the RV220W won't know in advance who's connecting and from where. I have read that when using the Responder type, the remote settings should not matter. Also, the PSK is 25 caracters long.After setting the RV220W up, I have set up a L2TP/IPSec VPN connection on my Windows 7. I have set up the connection to connect to the DynDNS address and set up the PSK in the Advanced settings. After I typed my IPSec username and password to connect (which was created in the IPSec users section), Windows tries to connect and times out :
Error 789 : The L2TP connection attempt failed because the security layer encountered a processing error during initial negotiations with the remote computer.
At the same time on the RV220W, this error shows up in the logs :
2012-08-26 23:45:24: [rv220w][IKE] ERROR: Could not find configuration for 24.54.xx.xx[500]
I can't figure out what I am doing wrong. I've read the Administration manual quite a few times and it seems that I have followed everything by the book.I have tried to enable/disable my Windows firewall, but did not get any luck. The RV220W is located at a remote office, to make sure that I can connect from the outside, before you think that I'm trying to connect to the outside, from the inside I have changed few settings in the IKE policy to try to make it work. Settings such as the Exchange Mode, because I've read that the Aggressive mode had issues. At this moment, the settings are back to default, once the wizard has been run. I'm thinking about setting a PPTP to confirm that this works, then move up to IPSec PSK, then to IPSec SSL Certificate.
I have an RV220w in office, which I have configure it for ipsec vpn connections. Behind router there is a NAS for file storage. [code]I have managed to connect to router from my home with ShrewVPN and I can ping every client connected to RV220w.The problem is that I can't connect to neither to router's web interface nor to NAS web interface or any other intranet web page ( the browser doesn't give any error, but keeps loading without showing the web page). Although, I can access web pages from my laptop.Also, in windows file explorer when I connect to NAS, although I can browse folders I can't copy files from my laptop to NAS and vice versa, I always get timeout error (I have checked the permissions to NAS and in addition I succeed to copy a small txt file 1kb, but no luck with bigger files).I also tried with QuickVPN client, but I had the same results. When I connect with pptp from windows everything works like a charm.My laptop has windows 7 64bit.
We have 2 RV220W Routers installed in seperate offices. We are attempting to setup a IPSec tunnel between the two sites. So far we have been unsuccessful in getting this to work.On both sides, we are getting a successful connection established, but netiher site is recieving any packets. Both sides are transmitting packets though. We have exhausted our resources trying to figure out why.
I have a RV220W operating in 2.4GHz N-only mode. Channel bandwidth is set to 20MHz, channel to 6 (a site survey shows that channel as completely clear), WPA2/AES. I am connected to a TrendNet wireless bridge. The admin page for that wireless bridge shows a link quality of 100% with a signal strength of 71%. If I select a higher channel (11), the signal strength drops to 51%.
I have a Windows 7 PC connected to the Trendnet bridge and a Windows 7 server connected to the RV220W, both via a 1Gbps LAN port. When I transfer a file from the server to the PC or vice versa, I get a lowsy 2MBps (~20Mbps) transfer rate. That seems awfully slow. I tried channel bonding from 20 to 40 MHz
I have a setup with 2 RV220W at 2 locations.Both with the latest Firmware (1.0.3.5). I configured portforwarding for RDP at one site. Works perfekt. I also configured an IPSec VPN between the 2 sites. Works too.
Configuration overview: Site_1: - IPSec VPN to site_2 Site_2: - IPSec VPN to site_1 - Port forwarding for RDP to a local server (server_2)
My first problem is that i can ping server_2 through the VPN from a pc within site_1 but i can not access this server via RDP. As soon as i disable the Portforwarding for RDP at site_2, RDP via VPN works! I assume, that the RV220W mixes up portforwarding and VPN.I tried to set up an additional firewall rule at site_2 allowing the traffic between the local networks of both sites without restrictions and place this rule at toe top. But here is my second problem: I can not add any destination network to the firewall settings (firewall-->access rules). I only allows me to define a host to redirect the traffic to.
I try to connect to RV220W with windows 7 client but I fail : error 789. I compare again and again pre shared key, but it doesn't change anything. How to connect to RV220W with IPsec client ?
I am trying to configure this router to obtain an IPv6 address from my ISP who offers a dual stack IPv4/IPv6 DHCPv6 Prefix Delegation service.
I did a WAN packet capture to see the type of DHCPv6 packets the router sends to the ISP in order to obtain an IPv6 address and I saw that the router is sending DHCPv6 solicitation packets of type IA_NA i.e. for Identity Association for Non-temporary Address. However, most ISPs that offer a dual stack IP4/IPv6 service, they use DHCPv6 Prefix Delegation in which case the router is expected to send DHCPv6 solicitation packets of type IA_PD i.e. for Identity Association for Prefix Delegation.
I then downloaded its configuration file and saw the following:
So, the option for the DHCPv6 client to perform a prefixDelegation request is disabled. Does that mean that if I set this flag to "1" it is going to work? Well, I edited the configuration file and changed this flag but the router refuses to load it! It complains about the file being changed. How does it know that? Is it computing some type of checksum? How can I manually edit this flag and update the router's configuration?
i'm using an rv220W and i whant to know if is it possible to assign vpn traffic to a vlan when i setup an ipsec tunnel?
example: Im using different vlans on my rv220W. Vlan 10: engineers (ex: 192.168.1.0/27) no intervlan routing Vlan20: sales (ex: 10.0.123.0/24) no intervlan routing
This is what i need: - An engineer is on the road and when he makes a ipsec vpn connection => assignd to the vlan "engineers" so he can access the server/pc's in that vlan.and when someone from the sales group starts a vpn connection he needs to be in the vlan "sales" so he can access his pc/data,...
I'm in the middle of restoring a Windows XP computer after a drive failure, and on the new system, the Turn On File and Printer Sharing setting has been forcing a reboot and always resets itself to Off after the restart.
[code] Basically, we used to use Outlook for our customer management, but after I tried to design a custom form for customers that suited our needs better than Outlook's default form (i.e. we don't need state, country, region, etc. for each customer, and we'd prefer to have spots for Roof, Shingle, Shingle color, etc. in their place), we ended up turning OneNote into our new Customer Management System.Our problem is sharing files, and the security or lack thereof that goes along with it.We used to save all the files to a single computer, and use Windows 7 Home group to access them. That worked okay, but often we couldn't see the file-holding computer, and would have to disconnect/reconnect to the internet.
We recently bought a NAS HD, which actually works a lot better than I expected. Unfortunately, we've learned recently that new employees are not always the most trustworthy. So this is what we are trying to do:We want to set up some type of way for us to save, store, and access files, which allows us to keep track of who has done what (access, save, copy, delete, print, etc.), preferably one where we can set up alerts if certain things happen (i.e. someone copies and pastes the entire thing, or attempts to delete). We've run into the problem where, yes, we want people to be able to copy and paste certain documents, yes we want people to be able to print, but no we don't want someone to be able to print out our entire customer lists, current project lists, etc.This NAS HD (MyBook Live 2TB by Western Digital) could quite possibly have the most ridiculous set up I've ever encountered. I can set up accounts and passwords, but they are completely irrelevant because from "Computer" you can just select the z:/ drive and it will still take you to our files. We just brought on a couple new people, and its like, everyone tells them to come to me in regards to the computers, and I can't even hook them up to the internet because it would give them access to our network, which in turn gives them access to our z:/ drive, which contains every file our company has.
\toshibapictures is not accessible. you might not have permission to use this network resource. contact the administrator of theis server to find out if you have permissions.
I have a little small network created with 6 computers. 5 of them are windows xp home and pro. jsut bought a new laptop with windows 7 64 bit home pre. All the xp laptops can share files easily but the windows 7 is giving me a really hard time.
The win xp computers can see the windows 7 folders showing up in my network places but when i try and open then it gives me this error "\toshibapictures is not accessible. you might not have permission to use this network resource. contact the administrator of theis server to find out if you have permissions"
I need setting up File/Folder/Printer sharing in small office LAN and also secure Files (password protect) among users. I have attached two JPG files in which i have tried my best to show the network diagram and how i want to share the files and folders. All the PCs are connected and i have made one Windows 7 Ultimate PC acting as File Server keeping its D Drive in sharing with other five Windows 7 Ultimate PCs acting as clients. I just want to know how to protect Files as per my requirement. There are no fixed PC of any dept users. All the users or Dept Head use any PCs as per availability.
our workstations provide data (files) to this network by using RDP. RDP allows a user to share the entire contents of one's C drive. I dislike this and many others in my organization also dislike this (from a security threat point of view). I am looking for an alternative and more secure approach.
recently i was trying to share files between two computers using a networking switch.(windows xp) I tried using network setup wizard on the host computer it only gave me two drive options f drive and the floppy disc drive. so i selected f drive to copy files. I inserted a cd and clicked next but nothing happened. i tried clicking format button and it asked me to 'insert a cd to f drive' so I avoided the format button.My computer has a backup system which someone installed and im not too sure about it so I was wondering if f drive was referring to the backup system (sort of looks like an external hard drive with lights on it connected to modem) or maybe referring to usb port. I did not try using my usb yet. The second pc I noticed did not have network setup wizard on control panel and was not sure if i needed it. I heard that a router has a firewall and is more safer than using a networking switch. at this stage i dont need internet connection for the second pc
Ok, I have a new win 7 pc and my old win xp pc has all my video and picture files. On both of my xp pc's i can transfer files via my network places. Can I and if so how do I do that from the xp pc to the win 7 pc? I can stream the videos from the xp on the win 7 but not transfer them.
I installed windows server 2008 in another country with active directory - DNS server - file services Roles. with public IP.I can RDC the server - I can ping IP local and WAN - I can ping computer name from Local only not WAN.I can access the shared files locally using \IPaddresssharedmy problem is that I can't access \IPaddressshared from outside the network.[CODE]
I've recently had an issue where when I turn on File and Printer Sharing, and click apply, I go straight back to the advanced setting menu and its switched back to off despite me changing it.I cheked my services menu and I'm not sure what file and printer sharing has a dependancy on, but Workstation, Netlogon, and Computer Browser will not turn on with the error "windows could not start *** service on the local computer. Error 1068: The dependency service or group failed to start"I network printers and servers for a living, so this is an issue when I'm troubleshooting problems.I cant really name everything thats been installed on this laptop, it changes pretty consistently, but no programs should have interfered with my network
I remote from home through a vpn to work. that works fine, but i want to be able to copy and paste files from work computer to my home computer. I've tried it and it doesnt work, so i know theres a setting somewhere, but where is it!?
PC A is connected to 3g wireless router and and 3g dongle is conneccted to the router.(dongle ip belongs to a vpn).I have added PC A to router's DMZ, so that all the requesta coming to the router through the dongle (vpn ip) are forwarded to PC A.(Now I can access PC A with the vpn ip(dongle)).Now what i want to do is to access the shared files and folders in PC A from a remote network which is connected to the vpn by using the dongle ip.(ex: \[dongle ip] should display the shared files and folders of PC A.)
So what i want to know is, is it possible to file share only using a switch? At the moment I have 5 xp 1 switch (with ethernet cables) No router and no internet (the no internet can not be changed).
Will i have to set up individual ips manually (192.168.1.1/2/3/4 etc and then create a home network using the wizard and create a network disk.
I've recently had an issue where when I turn on File and Printer Sharing, and click apply, I go straight back to the advanced setting menu and its switched back to off despite me changing it.
I cheked my services menu and I'm not sure what file and printer sharing has a dependancy on, but Workstation, Netlogon, and Computer Browser will not turn on with the error "windows could not start *** service on the local computer. Error 1068: The dependency service or group failed to start"
I network printers and servers for a living, so this is an issue when I'm troubleshooting problems.
I cant really name everything thats been installed on this laptop, it changes pretty consistently, but no programs should have interfered with my network.
I have XP sp3 on my desktop and a new netbook with Win 7. I have set up wi-fi networking between them and have had some success of sharing a file. Today, I wanted to share my Firefox profile from my desktop to my netbook. I clicked on share this folder and could not find it on my netbook. I did a search with the title and nothing appears.
The Windows XP SP3 PC can login to the Windows 7 PC's file shares without a problem.But, the Windows 7 PC cannot login to the XP PC's file shares. Using the GUI I always get error code 0x800704b3. Using the "Net Use" command I always get "System error 67 has occurred. The network name cannot be found."This problem occurs regardless of whether I try to connect to the Windows XP PC by network name or IP address.On the Windows 7 PC I can successfully ping the Windows XP PC by both network name and IP address.
